from July 2013 by subject

[webappsec + webapps] CORS to PR plans

[webappsec] Agenda for 2-July-2013 teleconference

[webappsec] Proposed Agenda for 16-Jul-2013 Teleconference

[webappsec] Reminder: no call this week

Content Security Policy reports in Google+

Content Security Policy: inline style blocking, CSSOM and unsafe-eval

CSP 1.1: Nonce-source and unsafe-inline

Proposal for script-hash directive in CSP 1.1

SEC Consult's "CSP Bypasses"

Supporting base64 in nonce-value

webappsec-ISSUE-54 (uri vs url): policy-uri vs. policy-url, (also report, etc.) [CSP 1.1]

Last message date: Monday, 29 July 2013 19:28:01 UTC